Your SOC Doesn't Need More Alerts—It Needs A Brain
Padraic O'Reilly is the Founder at CyberSaint, transforming cyber risk management with AI, automation, and actionable insights.
getty
The phrase "alert fatigue" has become a mainstay in cybersecurity conversations. However, behind the flood of findings, alerts, vulnerabilities and compliance gaps lies a deeper problem: the security context crisis. Security teams aren't just drowning in volume; they're operating without a clear sense of what matters most and why.
As expected, the cybersecurity landscape is in constant flux—both inside and outside your organization. Every day, new vulnerabilities are discovered, common vulnerabilities and exposures (CVEs) are published, threat actor tactics, techniques and procedures (TTPs) evolve and active exploit campaigns emerge. Meanwhile, internally, asset inventories shift, misconfigurations pop up and controls degrade.
Each of these changes can introduce new risk, but rarely are they evaluated together. Correlating this evolving external threat landscape with an equally dynamic internal environment is no small feat, and without the right context, it's nearly impossible to prioritize next steps effectively.
Security operations centers (SOCs) are overwhelmed. According to a 2023 Cybereason report, 16% of surveyed SOC professionals manage only 50% to 59% of their weekly alert volume—meaning nearly half of incoming alerts go unactioned. This is not a resource issue; it's a signal-to-noise issue.
This results in analysts spending more time triaging than reducing risk and security leaders struggling to extract meaning from the chaos.
The costs of this crisis are already playing out in SEC filings and earnings reports.
In January 2025, ahead of the World Economic Forum's annual meeting, global leaders warned of not just isolated attacks but a convergence of geopolitical tension, AI-powered threats and increasingly fragile digital infrastructure. CISOs and heads of state alike flagged the growing risk of large-scale systemic cyber events, where one compromised system could trigger cascading failures across sectors.
Despite this clear and present danger, many organizations still manage cyber risk in silos with disconnected tools and manual processes that can't keep pace. The threats are evolving faster than our ability to see them—let alone act.
Regulators are also increasing the pressure. The SEC has begun cracking down on companies for downplaying the scope or impact of cyber incidents.
These datapoints are signs of a system under strain, where the inability to identify and act on meaningful threats before they materialize leads to costly impacts.
The future of cybersecurity isn't about shrinking the number of alerts but about surfacing the right ones. This means providing context so security teams can address the highest priority findings first.
Security teams today are forced to treat every finding like a potential crisis because they lack the necessary context to know which issues are critical. Maybe it is, maybe it isn't?
Every alert is potentially critical because there isn't a reliable way to correlate internal cyber risk posture data (controls, assets, configurations, etc.) with external threat intelligence. Teams are stuck reacting to noise instead of acting on risk. This is where AI can help—not by replacing teams but by augmenting them with clarity and prioritization.
AI's role in security isn't to replace human analysts. It's to amplify their ability to prioritize by analyzing massive volumes of security-relevant data in real time and making connections that would take humans days or weeks to uncover. AI can identify patterns, anomalies and correlations that are invisible to the naked eye. For companies I've personally worked with, it can flag the three alerts out of 3,000 that actually point to a business-critical issue based on how likely and impactful the risk is—and it can do so continuously, learning and adapting to evolving threats and environments.
The shift isn't just toward automation; it's toward intelligent, contextual decision-support.
However, AI is only as powerful as the data it's trained on. In cybersecurity, that means pulling together everything—from asset configurations to TTPs to missing controls—and understanding how it all interacts.
The power of AI lies in its ability to connect these dots. Not just to reduce alert volume but to prioritize what matters based on business impact. Is this vulnerability on an internet-facing, revenue-generating asset? Is it being actively exploited in the wild? Do we have controls in place to mitigate it, or do we need to escalate? That's the kind of insight that prevents breaches, and that's what's missing today.
To bring meaning to chaos, organizations must ingest and correlate data such as vulnerabilities (system-specific exposures), common weakness enumerations (code-level flaws and design weaknesses), CVEs (known public vulnerabilities), TTPs (adversary behavior patterns such as MITRE ATT&CK), threat intelligence feeds (emerging IOCs and APT campaigns), assets (business-critical systems, endpoints, cloud workloads, etc.), control gaps (deviations from expected security posture), risks (aggregated threat likelihoods and impacts), compliance frameworks (requirements from NIST CSF, ISO 27001, etc.) and business context (which systems support revenue, operations or customer experience).
As cyber threats grow more dynamic and the internal environment shifts daily, CISOs are under pressure to lead with precision. However, precision requires clarity. Before meaningful automation or response can happen, CISOs must ask the right questions that expose where context is missing.
Here are a few to start with:
• Are we treating many of these alerts equally because we don't trust our prioritization logic?
• Do we understand our control environment and, importantly, holistic cyber risk posture well enough to know where we're most vulnerable? This means taking into account all relevant datapoints.
• Can we correlate our internal control data with active threat intelligence in real time? If not, why? How can we make this a strategic priority?
If the answer is "not yet," it's time to rethink the way your security program operates.
The next evolution of cyber risk management is powered by real-time data, automation and AI, and leaders (whether technical or business-side) can't make this shift soon enough. The tools are finally available if you look for them.
Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
an hour ago
- Yahoo
Pro-XRP lawyer calls 70% shot at big win ahead for Ripple
Pro-XRP lawyer calls 70% shot at big win ahead for Ripple originally appeared on TheStreet. The years-long legal case surrounding the blockchain tech and payments firm Ripple took yet another turn as the crypto firm, along with the Securities and Exchange Commission (SEC), filed a joint motion to the District Court for the Southern District of New York on June 12. The motion renewed the parties' request to Judge Analisa Torres to grant an indicative ruling. It asked the court to dissolve a prior injunction and release $125 million held in an escrow. Earlier, Judge Torres denied a similar motion on May 15, calling it "procedurally improper.' The crypto community will keep a close watch on how she reviews the latest motion. Pro-XRP lawyer John Deaton is, however, 70% confident that Judge Torres will grant the motion that could bring the long legal battle to a final end. The SEC should have acknowledged the "overly aggressive" stance against crypto on the part of its prior leadership, which an appellate court found 'arbitrary and capricious,' Deaton opined. In her last judgment, Judge Torres asked the parties to demonstrate "exceptional circumstances" for her to vacate the ruling. Deaton said the SEC should have included a reference to pending crypto legislation such as the GENIUS and CLARITY Acts as an "exceptional circumstance." Ripple, on its part, should have highlighted how an injunction puts it at a disadvantage against competitors such as Circle (NYSE: CRCL), Deaton added. The argument submitted, the lawyer claimed, could be summed up as: 'Look judge, elections have consequences, and this is one of them.' It was in December 2020 that the SEC sued Ripple for the sale of allegedly unregistered XRP securities worth $1.3 billion. In July 2023, Judge Torres ruled that while the sale of tokens to institutional investors violated securities laws, their sale to retail investors didn't. In the run-up to the 2024 presidential election, Ripple's chief legal officer, Stuart Alderoty, personally donated $300,000 in XRP to Trump's campaign in June 2024. Once Trump won the election, Ripple Labs donated $5 million in XRP to his inaugural committee. Thereafter, Ripple and the SEC reached a settlement on March 25, as per which the company will pay $50 million of the original $125 million penalty, with the remainder refunded from escrow. The regulator has dropped cases against other crypto giants such as Coinbase (Nasdaq: COIN) and Binance. As per Kraken, XRP was trading at $2.16 at press time. Pro-XRP lawyer calls 70% shot at big win ahead for Ripple first appeared on TheStreet on Jun 14, 2025 This story was originally reported by TheStreet on Jun 14, 2025, where it first appeared.
Yahoo
5 hours ago
- Yahoo
Crypto Daybook Americas: Bitcoin Weathers Market Rout as Israel Hits Iran
By Francisco Rodrigues(All times ET unless indicated otherwise) Cryptocurrencies slid as Israeli airstrikes on Iran's nuclear and missile sites roiled global sentiment and sent investors fleeing risk assets. The CoinDesk 20 Index (CD20), a measure of the broad crypto market, lost 6.1% over 24 hours, and bitcoin (BTC), seen by some as a haven investment, dropped 2.9%. Gold futures, a more traditional refuge, rose 1.3% from their close. Israeli Prime Minister Benjamin Netanyahu said the overnight attack, which also targeted Iran's top military leaders, was aimed at rolling back Iran's nuclear program and missile capabilities. Iran, which has repeatedly called for Israel's destruction, responded by launching 100 suicide drones toward Israeli territory, though a more concerted reaction is anticipated. The strike came less than 24 hours after the International Atomic Energy Agency said Iran was not complying with uranium enrichment limits. The U.S. said it was not involved in the attack, which killed some of Iran's military leaders. The escalation saw risk assets across the board plunge. Japan's Nikkei dropped around 0.9%, U.S. index futures fell 1.2% and the Euro Stoxx 50 lost 1.35%. U.S. crude oil futures, on the other hand, rose more than 6% to $73, with Brent crude spiking 14% at one point. Gold surged to $3,445 per ounce, approaching its all-time high. Cryptocurrencies' declines dashed gains eked out earlier in the week on the back of ETF approval speculation. Solana's sol SOL, in particular, had rallied on reports the SEC asked ETF issuers to update their S-1 filings, potentially accelerating the launch timeline. SOL is down nearly 9.5% in the last 24 hours. 'Overnight, reports surfaced that the SEC has asked Solana ETF issuers to update S-1 filings, triggering a sharp rally in SOL,' Jake Ostrovskis, an OTC trader at Wintermute, told CoinDesk. 'Bloomberg ETF analysts Eric Balchunas and James Seyffart remain optimistic, assigning a 90% probability of approval by year-end, with potential approvals coming as soon as July or within three to five weeks of the updated filings,' Ostrovskis said. As a result, he said, the market is 'now relatively underexposed to SOL and related assets, which makes the current setup particularly interesting to watch.' Despite the optimism and growing inflows into spot crypto ETFs, with BTC funds bringing in $939 million month-to-date and ETH seeing $811 million in net inflows, investors are now focused on the Middle East. Polymarket traders are weighing a 91% chance that Iran will retaliate against Israel this month, while the perceived odds of U.S. military action against Iran jumped from a mere 4% to 28%. Stay alert! Crypto June 16: 21Shares executes a 3-for-1 share split for ARK 21Shares Bitcoin ETF (ARKB); ticker and NAV remain unchanged. June 16: Brazil's B3 exchange launches USD-settled ether (0.25 ETH) and solana (5 SOL) futures contracts, approved by Brazil's securities regulator, the Comissão de Valores Mobiliários (CVM) and benchmarked to Nasdaq indices. Macro June 15-17: G7 2025 Summit (Kananaskis, Alberta, Canada) June 17: The U.S. Senate will vote on the final passage of the bill Guiding and Establishing National Innovation for US Stablecoins (the GENIUS Act of 2025). Earnings (Estimates based on FactSet data) June 23 (TBC): HIVE Digital Technologies (HIVE), post-market, $-0.12 Governance votes & calls Arbitrum DAO is voting on a proposal to launch DRIP, an $80M incentives program targeting specific DeFi activity. Managed by a foundation-led committee, DRIP would reward users directly and allow the DAO to shut it down via vote. Voting ends June 20. Unlocks June 15: Starknet (STRK) to unlock 3.79% of its circulating supply worth $15.04 million. June 15: Sei (SEI) to unlock 1.04% of its circulating supply worth $9.70 million. June 16: Arbitrum (ARB) to unlock 1.91% of its circulating supply worth $31.28 million. June 17: ZKsync (ZK) to unlock 20.91% of its circulating supply worth $37.26 million. June 17: ApeCoin (APE) to unlock 1.95% of its circulating supply worth $10.43 million. Token Launches June 16: Advised deadline to unstake stMATIC as part of Lido on Polygon's sunsetting process ends June 26: Coinbase to delist Helium Mobile (MOBILE), Render (RNDR), Ribbon Finance (RBN) and Synapse (SYN). June 14: Incrypted Crypto Conference 2025 (Kyiv) June 18-19: Canadian Blockchain Consortium's 2nd Annual Policy Summit (Ottawa) June 19-21: BTC Prague 2025 June 25-26: Bitcoin Policy Institute's Bitcoin Policy Summit 2025 (Washington) June 26: The Injective Summit (New York) June 26-27: Istanbul Blockchain Week June 30 to July 3: Ethereum Community Conference (Cannes, France) Open interest (OI) across top derivatives venues saw a sharp reset. After peaking above $55 billion on June 12, total OI dropped to a the month's low of $49.31 billion, according to Velo data. Binance shed over $2.5 billion overnight, alongside broad risk reduction across OKX, Bybit, Deribit and Hyperliquid. The pullback unwinds much of the steady build seen earlier this month. Options positioning also turned more defensive, with Deribit data showing the BTC and ETH put/call ratios climbing to 1.28 and 1.25, respectively. While upside strikes like $140K (BTC) and $3,200 (ETH) still hold large call interest, the majority of June 27 exposure remains out-of-the-money. The shift suggests growing demand for downside protection alongside lingering upside optionality. Funding remains broadly negative, especially across altcoins. ETH sits at –7.99% on Deribit and BTC at –1.06%. Sharp discounts persist for DOT (–15.2%), LINK (–15.1%) and 1000SHIB (–44.5%). HYPE (+8.27% on Hyperliquid) and AAVE (+9.95% on Bybit) are among the few to show long bias. Despite Tuesday's $1.16 billion in liquidations, leverage remains elevated. Coinglass data shows 90% of liquidations came from longs. As of June 13, bitcoin liquidation heatmaps highlight up to $84 million in long-side OI between $102K and $104K. These levels remain untriggered, but could amplify downside if breached. BTC is down 1.08% from 4 p.m. ET Thursday at $104,889.07 (24hrs: -2.42%) ETH is down 4.48% at $2,523.28 (24hrs: -8.81%) CoinDesk 20 is down 3.2% at 3,007.21 (24hrs: -6.04%) Ether CESR Composite Staking Rate is unchanged at 3.11% BTC funding rate is at 0.0018% (1.9776% annualized) on Binance DXY is up 0.44% at 98.35 Gold futures are up 1.25% at $3,445.00 Silver futures are up 0.47% at $36.47 Nikkei 225 closed down 0.89% at 37,834.25 Hang Seng closed down 0.59% at 23,892.56 FTSE is down 0.38% at 8,851.53 Euro Stoxx 50 is down 1.37% at 5,287.21 DJIA closed on Thursday up 0.24% at 42,967.62 S&P 500 closed up 0.38% at 6,045.26 Nasdaq Composite closed up 0.24% at 19,662.48 S&P/TSX Composite closed up 0.35% at 26,615.75 S&P 40 Latin America closed down 0.30% at 2,617.09 U.S. 10-Year Treasury rate is unchanged at 4.365% E-mini S&P 500 futures are down 1.16% at 5,979.50 E-mini Nasdaq-100 futures are down 1.42% at 21,621.50 E-mini Dow Jones Industrial Average Index are down 1.18% at 42,483.00 BTC Dominance: 64.77 (0.70%) Ethereum to bitcoin ratio: 0.02412 (-3.52%) Hashrate (seven-day moving average): 928 EH/s Hashprice (spot): $52.43 Total Fees: 4.86 BTC / $508,710.78 CME Futures Open Interest: 150,705 BTC BTC priced in gold: 30.6 oz BTC vs gold market cap: 8.66% Ether continues to face resistance at the daily order block, with the price dropping below Monday's high as tensions ramp up in the Middle East. Earlier today, it briefly traded below Monday's low before reclaiming that level. A daily close above Monday's low of $2480 — aligned with the 200-day exponential moving average, which has served as key support since May — would be an encouraging sign of strength. Strategy (MSTR): closed on Thursday at $379.76 (-1.9%), -2.63% at $369.78 in pre-market Coinbase Global (COIN): closed at $241.05 (-3.84%), 2.1% at $236 Circle (CRCL): closed at $106.54 (-9.1%), +1.32% at $108.1 Galaxy Digital Holdings (GLXY): closed at C$26.44 (+0.08%) MARA Holdings (MARA): closed at $15.82 (-3.24%), 3.41% at $15.28 Riot Platforms (RIOT): closed at $10.21 (-3.22%), -3.33% at $9.87 Core Scientific (CORZ): closed at $12.14 (-0.9%), -2.55% at $11.83 CleanSpark (CLSK): closed at $9.71 (-2.61%), -2.99% at $9.42 CoinShares Valkyrie Bitcoin Miners ETF (WGMI): closed at $19.61 (-1.95%) Semler Scientific (SMLR): closed at $30.74 (-3.09%), -2.41% at $30 Exodus Movement (EXOD): closed at $31.62 (+1.74%) Spot BTC ETFs Daily net flow: $86.3 million Cumulative net flows: $45.29 billion Total BTC holdings ~ 1.21 million Spot ETH ETFs Daily net flow: $112.3 million Cumulative net flows: $3.87 billion Total ETH holdings ~ 3.92 million Source: Farside Investors In the past 24 hours, 248,759 traders were liquidated , with total liquidations coming in at $1.16 billion according to CoinGlass data. Bitcoin Tumbles Below $104K as Israel Strikes Iran (CoinDesk): Israel said it launched a 'precise, preemptive strike' to neutralize the country's nuclear program. Judge Orders Trump to Return California National Guard to Newsom (The Wall Street Journal): A federal judge ruled Trump violated the Tenth Amendment to the U.S. Constitution by unlawfully taking control of California's National Guard. An appeals court has paused the order pending review. Bitcoin 'Skew' Slides as Oil Prices Surge 6% on Israel-Iran Tensions (CoinDesk): The seven-day skew fell to its lowest since April, indicating increased demand for put options over calls after Israel's attack. Bitcoin's price fell to its 50-day simple moving average (SMA) at $103,150. Oil Curve Shift Shows Fears of Protracted Mideast Conflict (Bloomberg): A commodities strategist warned that escalation could disrupt Strait of Hormuz shipping, threatening 14 million barrels a day and potentially driving oil prices as high as $120. Single Bitcoin Trader Loses $200M as Crypto Bulls See $1B Liquidations (CoinDesk): About 247,000 traders were liquidated in the past day as $1.15 billion in positions were wiped out following overly bullish sentiment fueled by Circle's IPO and renewed U.S. enthusiasm for DeFi. Ripple, SEC File Joint Motion to Release $125M Held in Escrow (CoinDesk): The proposed resolution would return $75 million to Ripple and grant $50 million to the SEC, aiming to avoid further litigation and settle outstanding appeals. Replaces TKTK with "Thursday" in Market Movements section. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
5 hours ago
- Yahoo
I'm Seeking High-Yield Investments -- Can You Recommend Durable Stocks or ETFs That Yield 8% or More?
Ares Capital is an outstanding business development company with an ultra-high dividend yield. The JPMorgan Equity Premium Income ETF boosts its income by writing call options on the S&P 500. The Alerian MLP ETF owns high-yield master limited partnership (MLP) stocks. 10 stocks we like better than Ares Capital › As always, The Motley Fool cannot and does not provide personalized investing or financial advice. This information is for informational and educational purposes only and is not a substitute for professional financial advice. Always seek the guidance of a qualified financial advisor for any questions regarding your personal financial situation. If you'd like to submit your question for feedback, you can do so here. Go big or go home: That's a common mentality in business and sports. It's also a mindset shared by some income investors. A recent Reddit user asked about durable stocks or exchange-traded funds (ETFs) that offer dividend yields of 8% or more. That's a lofty threshold that eliminates many great dividend stocks and funds from contention. However, I can think of three ideas that income investors wanting ultra-high yields might consider. Looking for high yield 8%+byu/PomegranatePlus6526 individends Ares Capital (NASDAQ: ARCC) pays an exceptionally juicy forward dividend yield of 8.59%. What's more, the company has either maintained or grown its dividend for 63 consecutive quarters (nearly 16 years). How can Ares Capital pay such great dividends? First, it's a business development company (BDC). BDCs are required to return at least 90% of profits to shareholders as dividends to be exempt from federal income taxes. Second, Ares Capital is a truly extraordinary BDC. The company ranks as the largest publicly traded BDC. It has delivered the highest regular dividend growth of any externally managed BDC with a market cap of over $800 million that's traded publicly for the last 10 years. Ares Capital has generated the highest net asset value per share growth among this group. And it's provided the highest stock-based total returns among its peers, too. Middle-market businesses with annual revenue of between $10 million and $1 billion have been increasingly turning to BDCs for raising capital in recent years. This trend seems likely to continue. I think Ares Capital will be one of the biggest beneficiaries as the private capital market grows. If you want turbocharged income, the JPMorgan Equity Premium Income ETF (NYSEMKT: JEPI) could be right up your alley. This ETF pays a mouthwatering 30-day SEC yield of 11.38%. The SEC yield, by the way, is the net investment income earned over a 30-day period on an annualized basis. As you can guess from its name, this ETF is managed by JPMorgan Chase. The fund invests in stocks based on fundamental research. It boosts income by writing out-of-the-money call options on the S&P 500 (SNPINDEX: ^GSPC). The JPMorgan Equity Premium Income ETF currently owns 126 stocks. Its holdings include top-tier names such as Visa, Mastercard, Meta Platforms, Microsoft, and Amazon. This ETF has only been available since May 2020, so some investors might be skeptical about its durability. However, its portfolio managers have between 10 and 38 years in the financial services industry. Morningstar awarded the fund four out of five stars. I think the JPMorgan Equity Premium Income ETF could be a great pick for income investors. The Alerian MLP ETF (NYSEMKT: AMLP) is another good pick for investors seeking high income. This ETF's yield of 8.03% barely tops 8%, but it still clears the bar right now. Over the last 12 months, the fund's yield was 7.94%. This ETF is managed by SS&C ALPS Advisors, an investment company that focuses on income and alternative growth strategies. The Alerian MLP ETF attempts to track the Alerian MLP Infrastructure Index, which invests in energy infrastructure master limited partnerships (MLPs). The fund currently owns positions in 13 stocks. Its top holdings include MPLX LP, Energy Transfer LP, Enterprise Products Partners, Western Midstream Partners LP, and Sunoco LP. These five stocks together make up nearly 60% of the ETF's total portfolio. One downside with this ETF is its relatively high annual expense ratio of 0.85%. However, a positive with investing in the Alerian MLP ETF versus directly buying the MLP stocks it owns is that you can avoid the tax hassles associated with investing in MLPs. Before you buy stock in Ares Capital, consider this: The Motley Fool Stock Advisor analyst team just identified what they believe are the for investors to buy now… and Ares Capital wasn't one of them. The 10 stocks that made the cut could produce monster returns in the coming years. Consider when Netflix made this list on December 17, 2004... if you invested $1,000 at the time of our recommendation, you'd have $655,255!* Or when Nvidia made this list on April 15, 2005... if you invested $1,000 at the time of our recommendation, you'd have $888,780!* Now, it's worth noting Stock Advisor's total average return is 999% — a market-crushing outperformance compared to 174% for the S&P 500. Don't miss out on the latest top 10 list, available when you join . See the 10 stocks » *Stock Advisor returns as of June 9, 2025 JPMorgan Chase is an advertising partner of Motley Fool Money. John Mackey, former CEO of Whole Foods Market, an Amazon subsidiary, is a member of The Motley Fool's board of directors. Randi Zuckerberg, a former director of market development and spokeswoman for Facebook and sister to Meta Platforms CEO Mark Zuckerberg, is a member of The Motley Fool's board of directors. Keith Speights has positions in Amazon, Ares Capital, Energy Transfer, Enterprise Products Partners, Mastercard, Meta Platforms, and Microsoft. The Motley Fool has positions in and recommends Amazon, JPMorgan Chase, Mastercard, Meta Platforms, Microsoft, and Visa. The Motley Fool recommends Enterprise Products Partners and recommends the following options: long January 2026 $395 calls on Microsoft and short January 2026 $405 calls on Microsoft. The Motley Fool has a disclosure policy. I'm Seeking High-Yield Investments -- Can You Recommend Durable Stocks or ETFs That Yield 8% or More? was originally published by The Motley Fool
